f5061fd022
The dictionary-based variables didn't work properly and this patch changes them to individual variables. If users followed the existing documentation, their environments will be unaffected by this change (they are still broken). The new variables follow the pattern `security_VARIABLENAME` which will soon become the standard for the role to avoid variable name collisions with other playbooks and roles. Release notes are included with this patch. Closes-bug: 1577944 Change-Id: I455f66a0b4f423e2cf0e753b129367427f29479f
7 lines
306 B
YAML
7 lines
306 B
YAML
---
|
|
fixes:
|
|
- Failed access logging is now disabled by default and can be enabled by
|
|
changing ``security_audit_failed_access`` to ``yes``. The rsyslog daemon
|
|
checks for the existence of log files regularly and this audit rule was
|
|
triggered very frequently, which led to very large audit logs.
|